Total CVEs
16353
last 90 days
Avg Priority
36.5
of max 220
KEV
37
actively exploited
POC
3574
public exploits
Unpatched
5453
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
194
CVE-2026-24061
telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for t
185
CVE-2026-1731
BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain
184
CVE-2026-23760
SmarterTools SmarterMail versions prior to build 9511 contain an authentication bypass vulnerability
180
CVE-2025-40551
SolarWinds Web Help Desk was found to be susceptible to an untrusted data deserialization vulnerabil
170
CVE-2026-1340
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
164
CVE-2026-1281
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
160
CVE-2025-40536
SolarWinds Web Help Desk was found to be susceptible to a security control bypass vulnerability that
141
CVE-2026-20131
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM
137
CVE-2026-1603
An authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthen
134
CVE-2026-22769
Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credentia
Priority Distribution
| Priority | CVE |
|---|---|
| 57 |
CVE-2026-5024
A vulnerability was found in D-Link DIR-513 1.10. This issue affects the functio
|
| 57 |
CVE-2026-5211
A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L,
|
| 57 |
CVE-2026-5213
A vulnerability was determined in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, D
|
| 57 |
CVE-2026-6013
A vulnerability was detected in D-Link DIR-513 1.10. This vulnerability affects
|
| 57 |
CVE-2026-6014
A flaw has been found in D-Link DIR-513 1.10. This issue affects the function fo
|
| 57 |
CVE-2026-4555
A weakness has been identified in D-Link DIR-513 1.10. The impacted element is t
|
| 57 |
CVE-2026-5214
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-32
|
| 57 |
CVE-2026-6012
A security vulnerability has been detected in D-Link DIR-513 1.10. This affects
|
| 57 |
CVE-2026-5628
A security vulnerability has been detected in Belkin F9K1015 1.00.10. Impacted i
|
| 57 |
CVE-2026-5349
A vulnerability was identified in Trendnet TEW-657BRM 1.00.1. The affected eleme
|
| 57 |
CVE-2026-5613
A vulnerability was identified in Belkin F9K1015 1.00.10. This issue affects the
|
| 57 |
CVE-2026-5611
A vulnerability was found in Belkin F9K1015 1.00.10. This affects the function f
|
| 57 |
CVE-2026-5610
A vulnerability has been found in Belkin F9K1015 1.00.10. Affected by this issue
|
| 57 |
CVE-2026-5350
A security flaw has been discovered in Trendnet TEW-657BRM 1.00.1. The impacted
|
| 57 |
CVE-2026-5614
A security flaw has been discovered in Belkin F9K1015 1.00.10. Impacted is the f
|
| 57 |
CVE-2026-5612
A vulnerability was determined in Belkin F9K1015 1.00.10. This vulnerability aff
|
| 57 |
CVE-2026-5043
A weakness has been identified in Belkin F9K1122 1.00.33. The impacted element i
|
| 57 |
CVE-2026-5044
A security vulnerability has been detected in Belkin F9K1122 1.00.33. This affec
|
| 57 |
CVE-2026-5608
A vulnerability was detected in Belkin F9K1122 1.00.33. Affected is the function
|
| 57 |
CVE-2026-5544
A security flaw has been discovered in UTT HiPER 1250GW up to 3.2.7-210907-18053
|
| 57 |
CVE-2026-5566
A vulnerability was detected in UTT HiPER 1250GW up to 3.2.7-210907-180535. This
|
| 57 |
CVE-2026-4861
A weakness has been identified in Wavlink WL-NU516U1 260227. This vulnerability
|
| 57 |
CVE-2026-4862
A security vulnerability has been detected in UTT HiPER 1250GW up to 3.2.7-21090
|
| 57 |
CVE-2026-5042
A security flaw has been discovered in Belkin F9K1122 1.00.33. The affected elem
|
| 57 |
CVE-2026-27800
Zed, a code editor, has a Zip Slip (Path Traversal) vulnerability exists in its
|
| 57 |
CVE-2025-65098
Typebot is an open-source chatbot builder. In versions prior to 3.13.2, client-s
|
| 57 |
CVE-2025-68133
EVerest is an EV charging software stack. In versions 2025.9.0 and below, an att
|
| 57 |
CVE-2025-63945
A privilege escalation (PE) vulnerability in the Tencent iOA app thru 210.9.2869
|
| 57 |
CVE-2025-63946
A privilege escalation (PE) vulnerability in the Tencent PC Manager app thru 17.
|
| 57 |
CVE-2026-4553
A vulnerability was identified in Tenda F453 1.0.0.3. Impacted is the function f
|
| 57 |
CVE-2026-5605
A weakness has been identified in Tenda CH22 1.0.0.1. This affects the function
|
| 57 |
CVE-2025-69822
An issue in Atomberg Atomberg Erica Smart Fan Firmware Version: V1.0.36 allows a
|
| 57 |
CVE-2025-69821
An issue in Beat XP VEGA Smartwatch (Firmware Version - RB303ATV006229) allows a
|
| 57 |
CVE-2026-5155
A vulnerability was found in Tenda CH22 1.0.0.1. This affects the function fromA
|
| 57 |
CVE-2026-28372
telnetd in GNU inetutils through 2.7 allows privilege escalation that can be exp
|
| 57 |
CVE-2026-25478
Litestar is an Asynchronous Server Gateway Interface (ASGI) framework. Prior to
|
| 57 |
CVE-2026-5981
A vulnerability has been found in D-Link DIR-605L 2.13B01. This affects the func
|
| 57 |
CVE-2026-5982
A vulnerability was found in D-Link DIR-605L 2.13B01. This vulnerability affects
|
| 57 |
CVE-2026-5989
A flaw has been found in Tenda F451 1.0.0.7. Affected is the function fromRouteS
|
| 57 |
CVE-2026-5979
A vulnerability was detected in D-Link DIR-605L 2.13B01. Affected by this vulner
|
| 57 |
CVE-2026-6157
A vulnerability was detected in Totolink A800R 4.1.2cu.5137_B20200730. This impa
|
| 57 |
CVE-2026-6135
A weakness has been identified in Tenda F451 1.0.0.7_cn_svn7958. This issue affe
|
| 57 |
CVE-2026-6136
A security vulnerability has been detected in Tenda F451 1.0.0.7_cn_svn7958. Imp
|
| 57 |
CVE-2026-6133
A vulnerability was identified in Tenda F451 1.0.0.7_cn_svn7958. This affects th
|
| 57 |
CVE-2026-6168
A flaw has been found in TOTOLINK A7000R up to 9.1.0u.6115. The affected element
|
| 57 |
CVE-2026-5685
A vulnerability was identified in Tenda CX12L 16.03.53.12. This affects the func
|
| 57 |
CVE-2026-6134
A security flaw has been discovered in Tenda F451 1.0.0.7_cn_svn7958. This vulne
|
| 57 |
CVE-2026-5815
A vulnerability was detected in D-Link DIR-645 1.01/1.02/1.03. Impacted is the f
|
| 57 |
CVE-2026-1202
A security flaw has been discovered in CRMEB up to 5.6.3. The affected element i
|
| 57 |
CVE-2024-47886
Chamilo is a learning management system. Chamillo is affected by a post-authenti
|
| 57 |
CVE-2026-2952
A flaw has been found in Vaelsys 4.1.0. This vulnerability affects unknown code
|
| 57 |
CVE-2026-2944
A security flaw has been discovered in Tosei Online Store Management System ネット店
|
| 57 |
CVE-2026-2165
A weakness has been identified in detronetdip E-commerce 1.0.0. Impacted is an u
|
| 57 |
CVE-2026-5844
A vulnerability was found in D-Link DIR-882 1.01B02. Impacted is the function sp
|
| 57 |
CVE-2026-2184
A vulnerability was detected in Great Developers Certificate Generation System u
|
| 57 |
CVE-2022-50939
e107 CMS version 3.2.1 contains a critical file upload vulnerability that allows
|
| 57 |
CVE-2025-63911
Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to
|
| 57 |
CVE-2026-1505
A vulnerability was found in D-Link DIR-615 4.10. This issue affects some unknow
|
| 57 |
CVE-2026-3794
A vulnerability was identified in doramart DoraCMS 3.0.x. This issue affects som
|
| 57 |
CVE-2025-50195
Chamilo is a learning management system. Prior to version 1.11.30, there is an O
|
| 57 |
CVE-2025-50197
Chamilo is a learning management system. Prior to version 1.11.30, there is an O
|
| 57 |
CVE-2025-50193
Chamilo is a learning management system. Prior to version 1.11.30, there is an O
|
| 57 |
CVE-2025-50194
Chamilo is a learning management system. Prior to version 1.11.30, there is an O
|
| 57 |
CVE-2025-71257
BMC FootPrints ITSM versions 20.20.02 through 20.24.01.001 contain an authentica
|
| 57 |
CVE-2026-3053
A vulnerability was determined in DataLinkDC dinky up to 1.2.5. This affects the
|
| 57 |
CVE-2026-4562
A security flaw has been discovered in MacCMS 2025.1000.4052. This affects an un
|
| 57 |
CVE-2026-1412
A vulnerability has been found in Sangfor Operation and Maintenance Security Man
|
| 57 |
CVE-2026-2164
A security flaw has been discovered in detronetdip E-commerce 1.0.0. This issue
|
| 57 |
CVE-2026-28448
OpenClaw versions 2026.1.29 prior to 2026.2.1 contain a vulnerability in the Twi
|
| 57 |
CVE-2026-27707
Seerr is an open-source media request and discovery manager for Jellyfin, Plex,
|
| 57 |
CVE-2026-3746
A vulnerability was determined in SourceCodester Simple Responsive Tourism Websi
|
| 57 |
CVE-2026-3026
A vulnerability has been found in erzhongxmu JEEWMS 3.7. Affected by this issue
|
| 57 |
CVE-2026-25733
Rucio is a software framework that provides functionality to organize, manage, a
|
| 57 |
CVE-2026-2983
A vulnerability was determined in SourceCodester Student Result Management Syste
|
| 57 |
CVE-2026-2166
A security vulnerability has been detected in code-projects Online Reviewer Syst
|
| 57 |
CVE-2026-2177
A vulnerability has been found in SourceCodester Prison Management System 1.0. T
|
| 57 |
CVE-2026-4180
A vulnerability was identified in D-Link DIR-816 1.10CNB05. The impacted element
|
| 57 |
CVE-2026-2158
A vulnerability was detected in code-projects Student Web Portal 1.0. This impac
|
| 57 |
CVE-2026-2684
A vulnerability was determined in Tsinghua Unigroup Electronic Archives System u
|
| 57 |
CVE-2026-4623
A security vulnerability has been detected in DefaultFuction Jeson-Customer-Rela
|
| 57 |
CVE-2026-1176
A security flaw has been discovered in itsourcecode School Management System 1.0
|
| 57 |
CVE-2026-1160
A security vulnerability has been detected in PHPGurukul Directory Management Sy
|
| 57 |
CVE-2026-1119
A flaw has been found in itsourcecode Society Management System 1.0. The affecte
|
| 57 |
CVE-2026-1595
A vulnerability was detected in itsourcecode Society Management System 1.0. This
|
| 57 |
CVE-2026-1590
A vulnerability was identified in itsourcecode School Management System 1.0. Thi
|
| 57 |
CVE-2026-1589
A vulnerability was determined in itsourcecode School Management System 1.0. Thi
|
| 57 |
CVE-2026-1545
A weakness has been identified in itsourcecode School Management System 1.0. The
|
| 57 |
CVE-2026-2133
A weakness has been identified in code-projects Online Music Site 1.0. Impacted
|
| 57 |
CVE-2026-2938
A vulnerability has been found in SourceCodester Student Result Management Syste
|
| 57 |
CVE-2026-3730
A security flaw has been discovered in itsourcecode Free Hotel Reservation Syste
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 731d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2298d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2111d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1725d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2228d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 4976d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1197d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 998d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3753d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 900d |